Man-in-the-middle (MIM) attacks eavesdrop on conversations. Advanced MIM attacks can even listen in on SSL sessions. A man-in-the-middle attack is a form of active interception or eavesdropping (a third party listens in on a conversation).